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(57) Abstract: A transportable recording medium, such as a memory card (see figure 2) (1 10), includes an area for storing cookie 
information (222), such as user information, that has been encrypted using a public key obtained under a public key cryptosystem. 
£^ This makes it easy to use the same cookie information in different terminals and has cookie information, which has conventionally 
been unique to respective terminals, become unique to respective users. 
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: COOKIE DATA STORED ON TRANSPORTABLE RECORDING MEDIUM 

BACKGROUND OF THE INVENTION - •• . , 

!- Field of the Invention - - v.-, 

; " ' The P^ ese nt invention relates to data communication 
between a user's apparatus and another apparatus, such as the 
access from a. terminal on the internet to . a Web site. More 
particularly, the present inventidn-'relates; to a technique 
of facilitating the handling of personal information of each 
user and enhancing the security of the personal information.' 

2. Description of. .the. Related:Art 

-In recent- years,, the Internet has become increasingly 
popular and more, and more services, are being .provided on the 
Internet. A major service offered;on the Internet is WWW (World 
Wide Webrthat is a client/server.type information search system. 

In WWW, server, apparatuses. (Web sites) provide information 
in HTML-files and users of . the Internet browse the information 
using browsing software called -Web- browsers at terminals (Web 
clients). Various information and services are currently 
provided at numerous Web sites and a technology called "cookies" 
is widely used to provide information with 'efficiency . When 
a user enters a Web site, the Web site stores data, such as 
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personal inf ormation of the user, as a cookie in the terminal 
of the user through the Web browser. The next, time the user 
goes to the same Web site using the same terminal, the Web 
site reads the cookie from the terminal and uses the read cookie 
to provide information to the user. 

Cookies usually show personal information of users,, 
the last dates and times the users visited Web sites, and the 
numbers of times the users have visited. the Web sites . Cookies 
are also u§ed to identify users... Therefore, cookies are-used c 
as an element ; technology in: various . authentication systems 
and personalizing systems-.that customize services provided 
in WWW for respective userrs and provide the; customized services 

• 

to the . users..: . v r ;«U 1 . ♦ ■ 7 " «' •■• -■' ' 

While being a useful technology, cookies also have 
problems described below. One problem-is; caused by that vWeb 
sites store data,: such as personal information of. users, into 
terminals wittrwhich the users visit the Web sites. . If a single 
user uses a plurality of terminals or a plurality of users 
shares a single terminal or a plurality of terminals, therefore, 
Web sites cannot ; correctly obtain -and ~ use- dnfi ormation of 
respective^; users with cookies. Also, if a user replaces an 
old terminal with: new one, data stored as a cookie does not 
exist in the new. terminalc r : ( .Therefore| ; : to continuously use 
the cookie even after the -replacement , : the, user needs to copy 
the cookie from the old terminal to the new terminal, which 
constitutes, a burden on the user. 
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Another problem is caused by that personal information 
of users may be automatically stored as cookies without the 
users intending to do so and even Web sites, which are not 
the sites that stored cookies, may refer to the cookies with 
5 relative ease. Consequently,, there may be cases where cookies 
are maliciously . read, causing users 1 privacy to be violated 
or making users a victim of cyber fraud. This generates demand 
for. the enhancement of the security of personal information. 

10 SUMMARY OF . THE INVENTION - . . . 

The object of the -present, invention is therefore to 
provide, a service providing apparatus,, a service providing 
method,; and a.service providing program f or use with a technology, 
such as rcookies.,, that .cus tomi zes services provided via a network 

15 for respective users . Each of the service providing apparatus , 
service - providing method, and service providing program 
correctly handles information unique to, each user even if a 
. single user uses a plurality of terminals .or f a plurality of 
users shares a single, terminal or. a. plurality . of terminals. 

20 Each of the service providing. apparatus,, service, providing 
method, and service providing program also eliminates the need 
for users to. perform burdensome operations,, -such as the cppy 
of data, even if the users replace old apparatuses with new 
ones. Each . of the / service providing ^apparatus, service 

25 providing method, and. service providing^ program further 
enhances, the security of personal; information. The object 
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of the present invention' is also to provide a recording medium 
that stores the service providing program and a recording medium 
that stores cookie information. 

The stated objedt is achieved by a service providing 
5 method of providing a current" user of a first apparatus' with 
each of services that are 'prd^ided by a plurality of other 
apparatuses via a network, : the f irst 'apparatus being able to 
communicate with&ach.of the plurality of other apparatuses 
via the network and being locally connectable to a recording 

10 medium, out of recording media that are uniquely assigned to 
users of the first apparatus/ each recording medium being 
transportable arid including an " area for storing uttique 
information/ the service providing method including: a service 1 
requesting step where" the "first apparatus Requests' a second 

15 apparatus to provide d service desired" by the current user, 
the second apparatus ' being one J of r the plurality of. other " 
apparatuses; a lihique in'f orniation ireadihg step 1 where if a 
recording medium of the current user is Ideally connected to 
the first apparatus knd stores unique information/' the second" 

20 apparatus reads the' unique information in the locally connected 
recording medium via the f irst apparatus and the network,- and 
a service providing step where the second apparatus customizes 
the desired's'e'rvice accbrdiii'g to the - read unique information 
and transmits ] this 'Customized service to the first apparatus. 

25 With this method, * an apparatus on the network reads 

the unique information stored in a transportable recording 
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medium, and customizes a service . according to the read unique 
information. 

. Also, if users are uniquely provided with recording 
media, the users are in a one-to-one correspondence with the 
5 recording media even if . th^ .users are not. in a one-to-one 
correspondence with terminals . Therefore, when a user browses 
a Web site, personal information of the user is.correctly.obtained 
from the user's recording, medium. Also, even after replacing 
an old. terminal with new one r . the user, can continuously receive 

10 the same- : service, by : simply connecting the user's recording 
medium to the new terminal. . , .. . .......... , . 

Here, in the- unique informatipn reading step, if no 
unique information is stored in the lpcally connected recording 
medium or no recording medium is locally .connected to the first 

15 apparatus, the second apparatus may not jread unique information 
from anywhere , r: and in ;the service providing s;tep, if. no unique 
information has been read in the.; unique information reading 
step, the ■ s.ecoiid, apparatus, may transmit the desired service 
to the .first -apparatus in., an, uncustomized s.tate. 

20 . ~. With this method,, if., the unique information is . not 

read,, the apparatus ^provides the user with a,. service . that is 
not customized. :. , ' - . ... ■ r ... 

This allows the user to receive .a service eyen without . 
unique information. .Also, because the unique information is 

25 stored only in the recording medium, the security.of the unique , 
information is- enhanced. , - 
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Here, the unique information stored in each recording 
medium may include user information that is inherent in a user 
assigned the recording medium/ and in the service providing 
step, the second apparatus may customize the desired service 
for the current user according to the user information included 
in the read unique informatibh and ; transmit the customized 
service to the' f ir3t -apparatus : i > " - : . - ^ ■ ■ • 

With this method/ the apparatus 7 reads user information- 
included in the unique information stored' in the transportable 
recording medium : and customizes the service for the 7 user 
according to the user information. 

Also, because the user information is stored in the 
transportable redbirdihg medium, the user can continuously use 
the same persohal information Without difficulty, even after 
replacing ah old 1 terminal with hew one. 

Here, th£ service providing method may further include : ; 
a user information* updating step, pearf 6rmed :; af t£r the unique 
inf ormation reading step,' Wliere if : the user irif ormation inherent 
in the current user needs to be r updated, thh Second apparatus 
updates the user information - included in the read unique 
inf ormation and overwrites' the user irif ormation in the locally 
connected recording medium with the updated' user inf ormation 
via the network arid the : first apparatus. 1 

With this 1 method; J if the user inf ormation needs to 
be updated, the second apparatus updates the user information. 
This makes it easy to manage the user information. 
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Here, the user information in each recording medium 
may have been encrypted using ,a public key of a public key 
cryptosystem, the second apparatus may. store a secret key 
corresponding to the public key, the second apparatus may .decrypt 
5 the encrypted user inf oj^ation:Using ; the.secret key and customize 
the desired service .according to the decrypted user information . 
in the service providing .step^and the second , apparatus may 
update the decrypted user - information,, encrypt the updated 
user * information using the public key, and overwrite the 
10 encrypted user information in -t^e locally connected recording 
medium with the updated and ; encrypted user information in the 
user information updating step.,, 

* 

With, this method, user, information, that has been . 
encrypted, using . a public key is transmitted and received. 
15 As a result, the encrypted user information is read only by 
an author! zed apparatus that stores ,a secret key. 

j Here, -the ..network may be the . Internet, the first 
apparatus may be an Internet terminal that,. runs a specialized 
Internet browser, each .of the plurality pf .o.ther. apparatuses 
20 maybe a Web site, the. unique information stored in each recording 
medium may include cookie information used, through the Internet 
browser, and each recording medium : may store- the, cookie 
information as a file. -\ ^ , 

With this method, cookie .information that has 
25 conventionally been recorded on a: hard disc is stored in a 
transportable recording medium. - 
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This reduces the possibility that the cookie information 
may be maliciously read, causing a user ' s privacy to be violated 
or making the user a victim of cyber fraud. 

Here, the unique information stored in each recording 

5 medium may include a media 'identifier of the recording medium, 
the second- apparatus may : stbre:user information so that user 
information inherent in Sach user is- associated, with the media.;, 
identifier of the recording • medium assigned to the user, and; 
the service providing' step may include: a user information ... 
10 finding substep 1 where the second apparatus finds user - 
information associated with the. media identifier included in 
the read unique information; and a customizing' substep. where 
the second apparatus customizes ' the desired service for the 
current" user according to i the ; f dund user information.^ 

15 This allows the second' apparatus to search for user 

information corresponding to- the media identifier included 
in the unique inf ormation stored in the transportable recording 
medium and' to customize the 1 'service for the user according 

to the user 'information* ••" : - f - -*■-■ 

20 Even after 1 replacing? "an old terminal , with new one,., 

therefore, the lis'er can -continuously receive the same service 
with the recording medium uniquely assigned to the user . Also, 
because the user information does not reside in' the user's 
terminal, the possibility is reduced that/the user information 

25 may be maliciously read from the user's terminal, . causing a 
user's privacy to be violated or making .the user .a victim of 
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cyber fraud. 

Here, the service providing method may further include: 
a recording medium connection step, performed before the service 
requesting step, where the first apparatus is locally connected 
5 to. the recording medium assigned to the current user* 

With this method, the rebdrding medium is uniquely 
assigned to the user of the first apparatus 1 and is locally 
connected to the first apparatus . 

Because the user uses the unxquely : assigned recording 
10 medium, personal information is Correctly ^obtained f or the 
user. "* ... .^v; /. - -■■ 

Here, the unique' information stored' iri-eacih recording 
medium may include a media identifier 6f ; the -recording medium 
and user inf dtmation that is 'inherent in abuser assigned the 

15 recording medium, the user inf ormation having been encrypted, 
and the service providing step may include-: a user password 
receiving substep where the second 1 apparatus receives • a user 
password from the current user via the first apparatus; a 
decryption key generating substep where the second apparatus 

20 generates a decryption key f rdrii the-media -icieiitifier included 
in the read unique information and th^ received tiser password; 
a decryption substep where the 'second apparatus decrypts the 
encrypted user inf ormation included in the ' "read unique 
information using the generated decryption : key;' and a 

25. customizing substep where the second apparatus customizes the 
desired service for the current user according to the decrypted 

9 
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user information. 

With this method, the encrypted user information is 
decrypted. using the decryption key generated from the media 
identifier and the user password. This enhances the security 
of the user information, . 

Here /: each .recqrding,,^ include a secure data 

area, the. media, identifier of . : each , recording . medium may be 
stored in the secure data area. of the. recording, medium^ and 
the unique information x.eading...step.may. include:, a .device 
authentication., ^ubstep where, .a device . authentication is 
performed between the first apparatus and the locally connected 
recording medium;; anci a ..reading^ 

if ; the= deyice-authentiGatiQn has .ended in, failure, the .second, 
apparatus is. prohibited to ; ,3;e^d r data f rpm, the : secure data, area 
of . the locally Gonnepted-. . recording medium. . 

With this method/ if, the device authentication has 
ended in failure,., . ; the ,medi<* r identifier is. not read. This 
enhances, the security of the user information. 

BRIEF DESCRIPTION .OF THE. DRAWINGS 

/These.- and, other objects, advantages and features of 
the invention s will become apparent frpm the following 
description thereof taken in conjunction with the accompanying 
drawings which illustrat^a specific embodiment of the invention 
In the drawings: . . 

• Fig. . 1, shows the .construction of £n . information 

10 
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processing system of the first embodiment of the present 
invention; 

Fig. 2 shows the detailed construction of a recording 
medium; , ■ , ; . : , 

5 . Fig. 3 shows the con^trucrtioii 'of ■ • an : information 

processing apparatus; - VJ - ' . 

Fig. 4* shows an example : c6ntent of -personal information 
written by a writing unit into a non-secure data area of the 
recording medium; .-o;-.::/.-; ..r^:':.. 

10 Fig. 5 shows the cohstructioh^ of ^a file server; 

Fig. 6 is : a f lowchart showing- the processing procedure 
of the information processing system-of the fi£st "embodiment; 

Fig/ l l '-shows the' construction- of - an information 
processing ' system of the second embodiment of the present 
15 invention; — ' ^ ' ■ J, : c. . i ■ . - /v 

Fig. 8 shows the detailed construction of a recording 
medium/*' ~ :U \ J - '--* ; - : ' :-.. f *r . 

Fig. 9 shows" the construction of ' an ■ information 
processing apparatus"; " "' -' r : ' r 1 ? - - 

20 Fig. 10 shows the construction of T a file server; 

Fig . "11 shows ah' example content "of 1 the' personal 
information stored in a" storing unit; and ' J? * 1 

Fig. 12 is a flowchart showing the "processing procedure 
of the information processing system of the sec6nd embodiment. 
25 ' - ••' '• " • : ■ " • • • . : : . • 

DESCRIPTION OF THE PREFERRED EMBODIMENTS ■ • v - ^ 



11 
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<First Embodiment> . 
<Overview> 

In an information processing system 100 of the first 
embodiment of the present invention, the data area for storing 
5 cookies is reserved in a transportable recording medium. This 
allows the cookies to be used in different terminals by simply 
connecting the recording medi t um to the. respective terminals. 

This also has cookies, which has : conventionally been unique, 
to respective terminals, become unique to respective users . : 

10 The recording medium^includes a secure data area that 

stores a media ; identifier- and. is. accessible only by terminals 
whose, authenticities -haye ? been proved by : v the device 
authentication with the recording medium. The.recording medium, 
also includes a data area that is not secure and stores a r coQJc.ie.,. . f 

15 such as user information, that has been encrypted using a public, 
key obtained under;- a public, key cryptosystem... It should be. 
noted here that the data area that is not secure is hereinafter 
referred to as the r /'non-secure t data t area" ? 

• A Web site requested by an authorized terminal to provide 

20 a service reads the media identifier from the secure data area 
via the terminal and identifies, the user of the terminal using 
the readmedia identifier. The Web site also reads the encrypted 
cookie from the non-secure data,area, decrypts the read cookie 
using : a secret key stored in the Web site, ^customizes the service 

25 according to the decrypted cookie, and provides the customized 
service to the terminal . - : ■ . 

12 . 
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It should be noted here that if theTdevice authentication 
between the recording medium. and the terminal has ended in 
failure, the media identifier is not read and the Web site 
cannot identify the user. 
5 Also/ unauthorized Web "sites do not store the secret 

.key, so that the encrypted cookie cannot'be -decrypted by the 
unauthorized Web sites . As a result, the security of personal 
information 'is enhanced in : comparison with a conventional: 
■ system; - • *• .• ' . -.o..- ; f .;.;.. 

10 ■ ... ' • - : • • ,. r - .•- 

<Construction>: ■ •■ . ... :. i.- ■. « 

- ■ Fig. 1 shows the construction of the information 
processing system 100 of the first -embodiment . . ■ 

The information processing; system 100 includes a 
15 recording medium 110, an information processing apparatus 120, 
and a .-file' server 130 . > > i , - 

. • The -■ recdrdirig . medium i il0 : ^ is, ^-for- instance, a 
semiconductor medium, such as a memory card; and ^a ; user locally 
connects the recording medium 110 to the inf ormation processing 
20 apparatus 120 via ^ port," a slot'V • or ^the like . 

The informat ion. processing apparatus 120 is a. client 
apparatus, such as an Internet terminal, -that runs a specialized. 
Web browser and is. connected to a,network, such:as the Internet. 
The information processing apparatus: 12 0 is connected, to the 
25 file server. 130 via the network, issues an access -request to 
the file server 130, > and browses information provided in HTML 
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files by the file server. 130. 

The file server 130 is a server apparatus, such as 
a Web site, that is connected to a network, such as the Internet. 
The file server 130 is connected to the information processing : 
5 apparatus 120 via the network and. provides: information in HTML 
files to the information, .processing, apparatus 120. 

It should be noted here that the inf ormation processing . 
apparatus 120 is not limited.^to * an: Internet terminal, and gnriay i' : 
be any other device that can access the information provided 1 . 
10 by the file server 130 via the network. For instance, the 
information processing apparatus 120 may b.e. an 
Internets-accessible TV, _:STB, . radio .cassette tape recorder, 
microwave oven, Jor refrigerator . "- .*> - ■ , 

Fig. 2 shows the detailed construction of the recording _ 
15 medium 110. - v . ■ ?> 1 

As shown in this drawing, the recording ^medium 110 
includes a t secure ;data are^ 111, a non-secure data area 112, 
and an authentication unit - 113,. .:, A media ID J^s^ stored in the 
secure data area:. 111.. ^ \ - • . ,. . , . . 

20 It should be noted here. that media IDs .are identifiers 

unique to respective ( recording media ; and are used to identify 
users and to generate encryption keys. - -* . 

The authentication unit 113 performs an existing device, 
authentication, .such as ; a mutual authentication,., with an 
25 apparatus to which the recording medium 110 is connected. 
In this embodiment, the authentication unit 113 performs a 

14 
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mutual authentication with ah authentication unit 124' of the 
information processing apparatus 120 . 

The secure data area 111 is a storage area that cannot 
be accessed without an access right. That is, only if the 
device authentication between the "recording -medium 110 and 
the information' processing apparatus :120 has- succeeded, the 
information processing apparatus-. 120 can access, the secure . 
data-area 111. "'. _ ._ ■ . , ; , . 

The non-secure data ' area •' 112 is a storage .area that 
can be- freely accessed. That is, . the information. processing 
apparatus 120 can access the non-secure data area 112 even 
if the -device authentication between the recording medium 110 
and the ; information" processing apparatus' -1-20 ' has ended in' 
failure'.--' • . , .<•,•,-.. ..... li . , ; . • 

• Fig. 3 shows the 'construction -of the- information 
processing apparatus' 120: ' : ' •• : .. 

As-shown in this drawing, the information processing 
apparatus' 120 includes an input unit 121/ -an encryption unit 
122, a transmission' r unit -123, an authenti cation unit 124, a 
receiving unit 125> a -reading unit 12 6, '" Ji '---a display unit 127, 
and a writing unit- 126. ; '- - ." , n ; - . 

The' input "unit 121 is an ; input "device, such as a 
combination of a mouse' and a keyboard, and- deceives various 
inputs from a user . , In this embodiment, : the -input unit 121 
receives a service providing request and personal^ information 
from the user-. -Here,, the service providing request is a request 

15 . 



WO 01/52168 



PCT/USO 1/00881 



for providing a service.. Also, the personal information is 
information unique to the user, such as the. user's name, age, 
date of birth, sex, family, hobby, taste, address, telephone 
number, job, E-mail; address, : credit card number, and password. : 
5 The . encryption unit 122.. encrypts the personal 

information received by the. ^ input unit .121. Here, the 
-encryption unit . 122- receives a public Hey that has been obtained 
under a public key cryptosystem, such as. a RSA cryptosy^tem, , : , 
from the file server 130 and prestor.es the public key. The 
10 encryption unit 12:2 encrypts the personal informations using, 
the public key. * . : 

.< The transmission unit, 123 transmits, to the file server 

» 

130, the service providing .request .received by ; the input : unit ;: 
121, the media ID read by the reading unit 12 6, the personal 
15 information encrypted by the encryption unit 122, and the 
encrypted personal information read by. the reading unit, 126. 

Here, if the reading, unit ,126 reads no. personal information, 
the transmission unit 123. transmits a personal infQrmation 
unregistered notification,, instead of the personal.inf ormation . 
20 The . personal : ; information un^g^stered notification is a 
notification showing that no personal /informatipn has been 
read. The authentication unit 124 performs an existing device 
authentication, , ; such as : a . mutual authentication, with a 
re cording medium that is connected to the information processing 
■25 apparatus 120. - ; - <~ .- ^ , . . 

In this embodiment, the authentication unit 12 4 performs 

16 
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a mutual authentication with the authentication unit 113 of 
the recording medium 110. ... 

The receiving unit 12.5 receives, . from the file server 
130, a, media ID transmission request, a personal information 
transmission request, a service -..file, data for a personal 
information registration screen, and encrypted personal 
information. Here, the . media ID- transmission request is a 
request for transmitting the media ID and the personal 
information transmission request, is a request, for transmitting 
the personal information. Also, the. personal information 
registration screen is a s creen, for .allowing thte user to register 
personal information . Further ,.. in addition tp the information 
items of the personal,, information .received- by the input, unit 
121, the personal information received by the receiving unit 
125 includes information, concerning, the Web site (the file' 
server 130), such as the last date and time, the user visited 
the Web site and the number of times the user has visited the 
Web site, _ The service file, contains- screen;; jdata provided as 
part of the service that the user, requested, by. issuing the 
service providing request. The. screen data is, for instance, 
used to display various information- ■ screens • . or a screen 
explaining an operating procedure., . ... .... 

The reading unit 12 6 reads, if a media I,D transmission 
request is received by the receiving . unit 125,,.. the media ID 
from .the secure data area 111 of the recording medium 110. 
Also,, if a personal information" transmission, request . is 

17 



WO 01/52168 



PCT/USO 1/00881 



received by the receiving unit 125/ the reading unit 126 reads 
the personal information from the non-secure data area 112 
of the recording medium 110. It should be noted here that 
if the device authentication between the recording medium 110 
5 and the inf ormationprocessihg apparatus 120 has ended in failure, 
the access to the secure - data 5 area 1 11 is prohibited so that 
the reading unit 126 cannot rdad the r media ID from the secure 
data arealll. :X :: ' • '"' ' V: l " ; • ■ ~" 

The 'display unit- 127 displays a personal information 

10 registration screen according to the data for the personal 
information regis tratibri scire en received by the receiving unit 
125. The display unit 12 "7 kiso displays a service screen for 
the user according to the' service f iTe received by the receiving 
unit 125'. The service scir'een is a- screen displayed as part; 

15 of the service that the user requested by ^issuing the service- 
providing request. VI - ,J "-' • : = ' r - - ;: 

. The writinq unit r-128 writespersonal inf brmation f which, 
have been received and encrypted- by the receiving unit 125, 
into the non-secure data area 112 of the ^recording medium 110. 

20 . Fig. 4 shows "ah "example content of the personal 

information Written by the writing unit 128 i ihto the ^ rion- secure 
data area 112 of the recording medium 110 i v 

Fig. 5 shows the construction of the file server 130. 
As shown in this' drawing, the file server 130 includes 

25 a receiving unit 131 , a user identifying unit 132, a decryption 
unit 133/ a file material storing unit 134, a file editing 
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unit. 135, a personal information updating unit 136, and .a 
transmission unit. 137. 

The receiving unit 131 receives a service providing 
request, a media ID, an t encrypted personal information, a 
5 personal information unregistered, notification, and a personal 
information changing request from the; transmission unit 123 
of the information processing apparatus 120.. The personal 
in f9 r ^ ati °n changing request is a request for changing the 
personal information. . 
10 The user identifying unit 132 identifies the. user using 

the media ID received by the receiving unit 131. 

. The decryption unit . 133 decrypts, the emprypted personal 
information received, by., the.. Receiving r unit 131. , Here, the 
decryption unit 3.33 prestores a secret key .that,has been obtained 
15 under a public key cryptosystem, .s f uch. as a ,RSA cryptosystem, 
and decrypts the encrypted personal. inf o^atip.nusing the secret 
key, w ... . ... . ,^ ( .. ./* t . , . 

.The file material storing unit 134 stores file materials 
that have been classif ied according ^tp hobbies and T tastes of 
20 users . . . . 

The file editing unit 135 refers , to the personal 
information decrypted by the decryption unit 133 and generates 
a service file by extracting each file material, which 
corresponds to the user 1 s hobby and taste shown by the decrypted 
25 personal information, from the file material storing unit 134 
and editing each extracted file material. 

19 
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' The personal 1 "±n format! oil updating unit 136 provides 
the data for the personal information registration iscreen, 
updates the personal information decrypted by" the decryption 
unit 133/ and- encrypts the updated personal * information, if 
5 the receiving unit receives a personal information unregistered 
notification or a personal information changing request . Here, 
the personal information updating unit 136 prestores a public 
key that' has been obtained urider a public key cryptosystem, 
such as a RSA cryptosystem, " updates the personal information " 

10 by changing inf o^atibh concerning the Web site, such as the 
last date and time tlie user visited the Web site and the number 
of times the user 'lias visite'd the Web site,' and encrypts the 
updated personal information' using the' public' key.' 

' The : trarismissioh " unit 137 transmits a media ID " 

15 transmission" request ahd : a j personal 'inf ormation transmission 
request, if the receiving linit 131 ir'eceives a service providing 
request. The transmission unit 137 also transmits the service 
file generated by the file editing uriit 135, tffe data for the 
personal intorm&tibii registration screen provided by the 

20 personal information updating unit 136, and the personal 
information that has been updated and encrypted by the personal 
information updating unit * 136 

<Operation> " <- ~ - 

25 Fig, 6 is a flowchart showing the processing procedure 

of the information processing system 100 o£ the first embodiment . 

20 
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The processing procedure is briefly described below 
• with reference to this drawing, . : 

(1) The input unit 121 of the information processing 
apparatus 120 receives a service providing request from the 
user (step SI). -.- >, :A - .- , - 

(2) The transmission unit 123. . transmits the service 
providing request .received by the. input unit 121 to the, file 
server .130 (step S2).;;. i ^ ; : - , 

(3) .. . .- The receiving unit 131 of the file^erver 130 receives 
the service providing request: from the. information processing 
apparatus 120 (step S3) . . r :;.: ; »; 

(4) The 1 transmission unit -137 -transmits a media ID 
transmission^ request and a : personal information transmission 
request to the information processing apparatus. 120 (step S4) . 

(5) The receiving unit 125 of the information processing 
apparatus 120 receives the media ID transmission -request and 
the personal information transmission- request from the file 
server 130 (step S5) . \ .„ : • . 

(6) . The reading unit 126 reads. a^media^ID; 'f rom the secure 
data area 111 of the recording medium 110 ; according to the 
media ID transmission request. -Also, the,„ reading, unit 126 
reads* encrypted personal information^f rom the non-secure data 
area 112 of the recording medium 110. according to- the personal 
information transmission, request.;? - Needless to say, if no. 
personal information is stored in the .non-secure data area 
112, the reading unit 126 cannot read , personal information 
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from the non-secure data area 112 (step S6) . ■- • 

(7) The transmission unit 123 transmits the media ID and 
encrypted personal information read by the reading unit 126 
to the file server. 130. If the reading unit 126 has read no <: 

5 .personal information, the transmission unit 123 transmits a 
personal information unregiistered notification; instead of 
personal information (step' S7) . • •' «' 

(8) The receiving unit 131 of the file server 130 receives 
a. pair of the media ID arid ::the /encrypted personal information 

10 or a -pair , of ~ the: media :i;ID and : the personal -information . 
unregistered notification. The user identifying, unit 132 
identifies the ,;user -using the received media, ID (step S8) . 

(9) - It is -judged whether . the receiving, uni£ .131 has received . 
personal informatiorii o^ a: personal information unregistered; 

15 notification (step- S9) .* c = : - v >: 

(10) If the , rece/iving unit; 131 has received' a" personal 
information- = .■unregistered- p. notification,. ..the , . personal 
information updating unit 136 provides the data for the personal . 
information registration screen and the transmission, unit 137 

20 transmits the data (-step- S10) - . r: - 

(11) The receiving unit 125 of the information processing 
apparatus 12 0 receives the data for the personal information 
registration screen transmitted from the file server 130 and 
the display unit ~- 127 'displays the personal, information 

25 registration screen (step Sll) . 

(12) The input unit 121 receives - personal- information 
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inputted by the user through the, -.personal information 
registration screen (step S12) . 

(13) The encryption . unit.. , 122 encrypts, the personal 
information received by the input unit 121. and the transmission 

5 unit 123 transmits the encrypted personal-information to the 
file, server 130 (step S13).. : ... - r .„ ■ , r : . 

(14) The receiving, unit 131 of the file^ server 130 receives 
the encrypted personal- information (step S14) ... . . 
(15 ) ^ The decryption unit 133 decrypt^ the^encrypted personal 

10 information received by the receiving, unit 131 (step- S15).o 
(16.) The . file editing unit 13.5- refers . to ; the personal 
information decrypted by the decryption uni ; t 133, and generates 
a service : file by -extracting ; each , file r material, .which 
corresponds, to the user Is.hobby and taste shown by the decrypted 

15 personal .information/ from the file material storing unit 134 
and editing, each^ extracted file material : (^step , S16) . 
(17) The personal information updating: unit 136 updates 
the personal information decrypted -by the decryption unit 133 
and encrypts the updated. personal information ,( step S17) . . 

20 (18) .. The, transmission unit 13 7., transmits „the service file 
generated by the file editing, unit, .135^ and. , the personal 
information updated and encrypted by the^perspnal information 
updating unit 136 (step Sl,8.).._. 

(19.) The receiving unit 125 of the inf prination processing 
25 apparatus JL20 receives, the service file from, the file server 
130 and the display unit 127 display a service screen for the 
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user according to the received service file. The receiving 
unit 125 also receives the updated and encrypted personal 
information and the writing unit 128 writes the received personal 
information into the non-secure data area 112 of the recording 
5 medium 110 (step S19) . : - : : 

As described above, in the information processing system 
of the first embodiment, personal information concerning a 
user is encrypted and stored in a transportable recording medium - 
and a server reads the persohal information from the recording 
10 medium, decrypts the read'p^rsonaLl inf ormation, and customizes.: 
a requested service for the user according to the decrypted 
personal information i : To use ; an information processing 

• 

apparatus, each : use-f needs "to 1 connect 1 a transportable recording ■ 
medium, whi ch i suniquely k B s igned to the us ex and s t b r e s pe r'sona 1 ^ 

15 information of the user , to the information processing apparatus 
This allows ttie : -f ile server to - correctly haridle personal •. 
information of each user. V ln the information processing system 
of the first embodiment/ the : security of personal information 
is also enhanced becaus^ personal ; inf 6'rmatlon -that has been 

20 encrypted is stored in a 'transportable' recbrdang medium. 

It shouldbe noted here that an encryption key may 
be generated ffBid' a media ID J and' personal information may be 
encrypted using the. encryption key and stored in the non-secure 
data area of a rfe Wording medium. Also, ah encryption key may 

25 be generated from 1 a media ID and 'a user password designated 

....... , i > . i t ,* i . * . * ■ 

by a user. ' ' ' ' V " 
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In the f irst embodiment , encrypted personal information 
concerning a user is stored in the non-secure data area of 
a transportable recording medium. : However, the encrypted 
personal information may be. f stored in the secure data, area 
5 of the transportable recording * medium. In this case,, the 
recording medium does not need ,.-t.o include —a. non-secure data 
area".' " .v -\ l ... -v? ■ . - 

:: * If a recording medium is not connected-to the information 
processing apparatus ..orr if recording, medium connected to 
10 the information processing apparatus stores. ; no r personal 
information, the file server may provide a requested service 
without customizing the service. 

<Second Embodiment> - " : ' — - 
15 <Overview> ' ,: ;f ; ; . .:v.^i, : ! a. 

In the first embodiment; encrypted personal information 
concerning a user is stored in a transportable »^eco-rding. ! medium. 
In the second 1 embodiment; however/' personal. information that 
. is not encrypted' is stored in -a file server.; ; . «' : .. ? 
20 In this embodiment,. each trahsportable-recordingraedium 

stores a media identifier, and is- uniquely provided to a user. 
A file server stores personal information of respective users, 
with the personal, information of reach, user toeing associated 
with one media identifier. The; file server reads, a media- 
25 identifier from a recording medium, searches for personal 
information ' corresponding to the .media identifier, and 
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customizes a service aGcording to the corresponding personal 
information. 

In the first -embodiment, encrypted personal information 
is stored and transmitted to enhance the security of personal : 
5 information. Ih the second embodiment, although encrypted 
personal information is transmitted between the : information 
processing apparatus and the file server like the first 
embodiment, personal information that is not encrypted is stored 
in a file server. This is because there is no security problem: ■? 
10 in the file server . ---r^ - • . '.<•• . ; 

<Construction> . ;. 

Fig. 7 shows the construction of an information 
processing system 200 of the second embodiment . < 
15 As shown in this drawing, the information processing, 

system 200 include ^ a recording medium < 210, ah ^information^ , 
processing apparatus 220/ ; and, a file server 230 . 

- The recording medium 210, the- information processing 
apparatus 220, and ..the file server 230. are respectiyely similar 
20 to the recordings medium; 110, the , -inf prmation: processing 
apparatus 120, and the file . server 130. 

* : The construction elements having the same functions 
as' those, of the first embodiment are assigned the same names 
and numbers as in the first embodiment: and are not described 
25 here. - . ; < • ~ ■ 

Fig. 8 shows the detailed construction of the recording 
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medium 210. " t 

As shown in this drawing* \ the recording medium 210 
includes a secure data area 111,* a non-secure data area* 112, 
and an authentication unit 113.;. A media ID is stored in the 
5 secure . data area 111. ... i ■■ . .v 

Fig. .9 shows the: construction ^ of the information 
processing apparatus 220.; \ 

As shown in. this drawing, the : information .processing 
apparatus 220 includes .an . input; .unit, 121, -an encryption, unit 
10 122, a transmission unit 223, : an authentication unit 124, a 
receiving unit. 225, a. reading unit 22 6, and a display unit 
127. . ; . . . ■ - . .■: ; : _J- r.-. 

, . - The transmission ■.- unit . 223 transmits , the .service 
providing request .received; by the input unit .121, the media 
15 ID read by the reading- unit 22 6,. and: the :personal information 
encrypted by the encryption, unit 122 to the file server 230. 

Here, if the reading unit 2-26; cannot tread a media ID, the 
transmission unit 223 - transmits ia; media ID f reading impossible 
notification, instead:,of thei media, ID. - .The media. ID reading 
20 impossible notification is a notification .showing that the 
reading unit 226 has read . no media, ID., ;; 

The receiving unit 225 receives, a media ID transmission 
request, a service file, and data for a. personal information 
registration screen from the file server 230. 
25 , . The reading uriit v 226 reads, if a. media ID transmission 

request is received by, the receiving unit 225, , a media ID from 
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the secure data area 111 of the recording medium 210 . It should 
be noted here that if. the device authentication between the 
recording medium 210 and the information processing apparatus 
220 has ended in failure, the access to the secure data area 
5 111 is prohibited so that the reading unit 226 cannot read 
the media ID from the secure data area 111 . 

Fig. 10 shows the construction v of the f ile server 230 
As shown this drawing/ the file server 230 includes 
a receiving unit 231/ a personal information searching runit.: 
10 232, a decryption unit 133; a file material storing unit 134.,,, 
a file editing unit 235, a personal information updating unit:. 
236, a transmission unit 237, and a storing unit 238. 

The . receiving unit 231 receives a service providing 
request, a. media ID, encrypted personal :inf ormation,. ,a media: 
15 ID reading impossible notification, and a personal information 
changing request afrom the transmission unit 223 of the*.' 
information processing -apparatus 220. v. ■>. 

The personal information searching unit 232 searches 
the storing unit 238. for personal information that corresponds 
20 to the media ID received by the receiving unit 231. 

The file editing 7 unit' 235 refers to the corresponding 
personal information and generates a service file by extracting 
each fiie material, 1 which corresponds to the user's hobby and 
taste shown by the personal information, from the file material 
25 storing unit 134 and editing each extracted file material. 
Here, if the receiving unit 231 receives a-media ID reading 
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impossible notification instead of a media ID, the file editing 
unit 235 generates a service file by extracting each file that 
appeals to all tastes from the file material storing unit 134 
and editing each extracted file material 
5 The personal information updating unit 236 provides 

the data for the personal information registration screen and 
updates the personal information stored in the storing unit 
238 :wi*th the personal information, decrypted; by the decryption 
unit 138 r if the personal information-searching unit 232 cannot 

10 find personal information corresponding to the media ID received 
by the receiving. unit 231 or if the recei-vin'g tinit 231 receives 
a personal information changing request. ^ - 

The transmission unit 237 transmits a media ID 
transmission request, a service ''file 1 generated by the file 

15 editing unit 235, and the data for 1 the* personal information 
registration screen provided by the personal - information 
updating unit -236 if the receiving unit 231- receives a service 

providing request. * ,( ^: ...~.\.\-: ^ . 

The ' storing unit 238 stores personal information of 

20 users so thatrthe personal. inf ormatioh of eachuser is associated 
with the media .ID stored in the. recording .^medium provided to 
the .user. - * .. ■ - . • .-i * ; ■ • . 

Fig. 11 shoves . .an example /Content :of .the personal 
information stored in.-the storing unit 23.8.. . 

25 : . • . . * • 

<Operation> - . ; . - ... i l-. .-. ; • ; . . 
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Fig. 12 is a flowchart showing the processing procedure 
of the information processing system of the second embodiment. 

The processing procedure is briefly described below 
with reference to this drawing* 
5 (1) The input unit 121 of the- information processing 

apparatus 2 2 O receives a service providing- request from the. 
user (step S21) . : .' ; . ... ... 

(2) . . The transmission; unit 223 - .transmits the service 
providing request received by the input unit 121 to; the file;, 

10 server 230 (step-, S22),, - j - ... r , 

(3) The receiving unit 231 of the file server 230- receives 
the service providing request from the information processing 
apparatus 220 (st<ep ; S23) . ■:>: 

(4) The .transmission, unit 237 transmits- a media. ID- 
15 transmission request to. the information processing: apparatus r 

220; (Step S24) . .•<;.-. - ; - . . ; , ,, ; ... V; . , 

(5) . -The-:,r-eceiying;;un±t 225 of -the information/processing 
apparatus 220 receives the media ID transmission request from 
the file^ server 230 , (step ; S25). .: ./ - ,v 

20 (6) : The reading uunit . 22 6 . reads a media ID from the secure 
data area 111 of the recording medium 110; according to the 
media ID transmission request. Here, if the recording medium 
. 210 is not connected to. the information processing apparatus 
220, the reading unit 226 cannot read the media ID :f rom the 

25. secure data area 111, Also, if the device authentication 
between the recording medium 210 and the inf ormation processing • 
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apparatus 22 0 has ended in failure, the information processing, 
apparatus 220 is prohibited to access the secure data area 
111. Therefore,- the reading unit 226 cannot read the media 
ID from the secure data area 111 (step S26) ; 
5 (7) The transmission unit 223: transmits the media ID read 

by the reading unit 126 to the f ile.server 230 . ,If the reading 
unit --12 6 cannot read the .media ID:,.- the: transmission unit 223 
transmits a media ID reading impossible notification (step 
S27) . - <v* *■ ' • ■ - - - 

10 (8) * The receiving unit 231 of the file Server 230 receives 
a media ID or a media ID reading impossible notification from 
the transmission unit 223 (step ~S28)^ : \- 

(9) It is judged whether the receiving unit 231 has received 
a media ID 6r a media ID reading impossible "notification (step 

15 S29) . >■ ; - - - '- ; ' — ■ - ■ ' • ■ 

(10) -If the receiving unit 231 -has received a media ID, 
the personal information searching unit 2 32 : searches the storing 
unit 238 for- personal information corresponding to the media 
ID received by the receiving, unit 231 v (step;:S3.0 ) . 

20 (11) The file editing unit 235 refers to; the corresponding 
personal information and generates a^service file;by extracting 
each file material, which corresponds to the user's hobby and 
taste shown by the personal information, from -the f ilematerial ; 
storing unit 134 and editing each extracted file material (step 

25 S31) . - .' ■ , ^ :r , - — - : 

(12) If the receiving.unit 231 has received a media ID reading 
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impossible notification, .the file editing unit 235 generates 
a service file by extracting each file material that appeals 
to all tastes from the file material storing unit 134 and editing 
each extracted file material (step S32) . 
5 (13) The transmission unit 2:37 transmits the service file 
generated by the file editing unit 235 (step S33) . 
(14). The receiving unit 225 of the information processing 
apparatus 220 receives; the ■ service file from the . file server. 
230 and the display unit 127 display a service screen for the 

10 user according to the ; received service file (step S34) . 

-As described above, .in the information pro^ system, 
of the second embodiment, a media ID is scored in a transportable 
recording medium. A file server, receives the media ID read 
by an information processing apparatus, searches, far personal' 

15 information corresponding to the received media ID, and 
customizes a requested seryiice according to the corresponding 
personal information. ; . Tq : . use an ; vinf ormatipn > processing 
apparatus, each. user needs to connect ai transportable recording 
medium, which is uniquely assigned to the user, to the.inf ormation 

20 processing apparatus . This allows the file server. to correctly 
handle personal -information of each user. 

It should be notedrhere that /each embodiment may be 
achieved by software.' Also; the software may be stored in 
a computers readable recording medium, such as a CD-ROM. Like 

25 the service providing apparatus, the computer-readable 
recording medium- becomes the subject of production, use, 
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transfer, lease, import, or an offer of transfer or lease. 

INDUSTRIAL USE POSSIBILITY 

The present invention- is applicable to data 
5 communication between a user 1 s'apparatus arid another apparatus, 
such as the access' from an Irifeefriet "terminal" to a Web site. 
By uniquely providing recording media of the present invention 
to' : users, the users are in a one-to-one correspondence with 
the recording media even' if ' the" users 1 are ""hb't 3 in a one-to-one 
10 correspondence with terminals . Theref ore, when a user browses 
a Web site, personal information of the user is correctly obtained 
from the user f 's recording medium; Also, even' after replacing 
an old terminal -with new one, the user can continuously receive 
the same service by simply connecting the user's recording 
15 medium to the new terminal. This facilitates the handling 
of personal information of the user. 

Also, —a Web site does not' : speci:fy a user without a 
recording medium ; being conriected : to' i : terminal . Therefore, 
the security J of : personal information is 3 enhanced without 
20 difficulty by- managing the recording media provided, to users . 

Further, 1 : the transportable - f, r.fe*cordl'rig medium of the 
present invention may store cookie information obtained through 
an Internet browser This reduces- the possibility' that the 
cookie information may c *be maliciously read-; •causing a user 1 s 
25 privacy to be violated or making the user a victim of cyber 
fraud. 
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What, is claimed is : r: r 

1 1. A service providing method .of providing a current user, of 

2 a first apparatus with each of services that are provided by 

3 a plurality of ; other - apparaibuses via a .network, the first 

4 apparatus being able to communicate with each of the plurality 

5 of other apparatuses via, tjie network .and being locally 

6 connectable to, a, recording, medium, out of .recording media that. 

7 are. uniquely assigned to,. users of the. first apparatus,, .each., 

8 recording medium .being transportable and including. an area t 

9 for .. storing unique information, , 

10 the, service- providing method compr 

11 . a service, Requesting step where the ; first, apparatus 

12 requests a second apparatus , to provide a .s^eryice, desired by t< 

13 the current user,, the second apparatus being oneof the plurality 

14 of other apparatuses; ........ ... iV 

15 i -a unique inf ormati.on reading step, wh t ere,.if a,,recording 

16 . medium of the current user i? : locally connected -to. the first 

17 apparatus and stpires unique inf ormation, the second apparatus 

18 reads the unique inf oxmation ^ in, the. locally connected recording 

19 medium via the f irst apparatus and the : network;, and 

20 a service, providing step . where, the second apparatus 

21 customizes the desired, service according to the read unique 

22 information and- transmits the customized service to the first 

23 apparatus. : ^ . 
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1 2. The service providing method of Claim l f 

2 wherein in the unique information reading step> if 

3 no unique information is stored in the locally connected 

4 recording medium or no recording- medium is locally connected 

5 to the. first apparatus, the: second; apparatus does not read 

6 unique information from anywhere, and ■ . .: ; . 

7 in the service providing step, if no unique inf ormation 

8 has been read in the unique inf ormation reading step, the second 

9 apparatus transmits the desired service to the first apparatus 
10 in an uncustomized state; 1 

1 3. The service providing method of ; Clairrv 2^ •-. v 

2 wherein the unique information stored inea"ch recording 

3 medi\am includes : user inf ormatidn- that 'is inherent in a user 

4 assigned the recording medium, > and : r. > - 

5 in the^ service providing-;step/ the vsecond apparatus 

6 customizes the .desired service for .the:. current user according 

7 to the user, inf ormation includedcin the read unique. inf ormation 

8 and transmits the customized service to the first apparatus. 

1 4. The service providing method of Claim 3 further comprising: 

2 a user information updating: step>: performed after the 

3 unique information reading step, where if the .user information 

4 inherent in the current user needs to be updated, the second 

5 apparatus updates the user information included in the read 

6 unique' inf ormation arid overwrites the- user inf ormation in the 
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7 locally connected recording medium with the updated user 

8 information via the network and the first apparatus . 

1 5. The service providing method of Claim 4, 

2 wherein the user information in each recording medium * 

3 has been encrypted using a .public key of a public key 

4 cryptosystem, P ...^ ~ > . : •*.-?; . 

5 the second .apparatus stores a secret key corresponding.; 

6 to. the public, key, J ; : ': c o 

7 in the service providing step, the second apparatus 

8 decrypts the encrypted user information using the secret key 

9 and customizes the, desired service.- according to the decrypted 

* 

10 . user information; {-and* - :1 . t s 

11 in the user information - :; updating : step,:-. -the second;, 

12 apparatus updates the decrypted-rusert information/ encrypts; 

13 the updateduser inf ormation;usinig:the public key , and overwrites 

14 the encrypted user ■ information; -in - the locally connected 

15 re cording medium with the updated and encrypted user, inf ormat ion. 

1 6. The service providing method of Claim 5, 

2 wherein- the network is the Internet,^ 

3 the first apparatus is ah internet terminal that runs 

4 a specialized Internet browser, , s 

5 each of the plurality, of other, apparatuses is a Web 

6 site, ; ■ - ~ — ... , » . 

7 the unique- inf ormation stored in each, recording medium 
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8 includes cookie information-used through ?the Internet browser, 

9 and . : . 

10 each recording medium : stores the cookie information 

11 as a file. . : . 

1 7. The service providing method of Claim 2, 

2 : wherein the unique information stored in each recording 

3 medium includes a rafedia identifier of the recording medium,. 

4 the second apparatus stores user Information so that 

5 user information inherent in each user is associated with the 

6 media identifier of the recording medium assigned to the user, 

7 and " ■ ~ r *■ a - *"'•-•:--■':■■ • ->= •■ • ■ 

8 the service providing step includes: 

9 : a 'user information finding substep- where the second 

10 apparatus finds user information associated with the media 

11 identifier included in the read unique information; and 

12 a ' customizing' substep '.where- the "second apparatus 

13 customizes the desired service for the" current' user according 

14 to the found user information, * : •;. r.:~r ; 

1 8. The service providing method of Claim 1 further comprising: 

2 - ■ - a recording medium- Connect ion before 

3 the service requesting step, where the first apparatus is locally 

4 connected to the recording medium assigned tb r the current user. 

1 9. The service providing method of Claim 8, - 
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2 wherein the unique information. stored in each recording 

3 medium includes a media identifier of the recording medium 

4 and user information that is inherent in a user assigned the 

5 recording medium, the user information having been encrypted, 

6 and 

7 the service providing : step : includes : . 

8 a user password ^epeiving substep .where the second 

9 apparatus receives a user password from the current user via, 

10 the first apparatus; ,,. r ,, , 

11 a decryption key generating substep where the. second 

12 apparatus generates a, decryption key. from the media identifier 

13 included in the read unique information and the received user 

14 password; r ■ ;r : . * . - 

15 a decryption substep where the second apparatus decrypts 

16 the encrypted user information included : in the read unique . 

17 information using- the generated ,, decryption:- key;, and, 

18 a \ customizing substep where, the* .second ~ apparatus 

19 customizes the desired service: for the current user according 

20 to the decrypted user information. , r. i 

1 10,. The. service providing, method, of plaim 9, , 

2 _ wherein .each v recording. medium; includes a secure data 

3 area, : - * /:■;.. - . -.- 

4 . the media- identifier of each recording medium is stored 

5 in the secure data area of the recording medium, and 

6 the unique -..information., reading step .includes : 
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7 a device authentication substep where a. device 

8 authentication is performed between the first apparatus and 

9 the locally connected recording medium; and 

10 a reading prohibition substep where, if the device 

11 authentication has ended in failure r the second apparatus is 

12 prohibited to read data from the secure data area of the locally 

13 connected recording medium.' : = •"■*:• ' \ ~ . 

1 11. A service providing method used by a first apparatus, that 

2 receives each of services that are provided by a plurality 

3 of other apparatuses via a 1 network and provides the received 

4 service to a current user of -.the- first -apparatus , the first 

5 apparatus being able to communicate with each; of the plurality . 

6 of other apparatuses via the network and, being locally 

7 connectable to= a~ recording medium, but of recording media that 

8 are uniquely assigned to users of the. first apparatus, each 

9 recording: medium being transportable; and including an area 

10 for storing unique . information,, t ■;. . ; j. . ^ v . : 

11 the service providing method comprising : 

12 a service -requesting .step where the .first apparatus 

13 requests a second apparatus to 'provide a service desired by 

14 the current user, the second apparatus being one of the plurality 

15 of other apparatuses; - " : - n '* - ■'" 

16 a unique information transmitting v: step where if a 

17 recording medium of the current user is locally connected to 

18 the first apparatus and stores unique information, the first 
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19 apparatus reads the unique information in the locally connected 

20 recording medium and transmits- the read unique information 

21 to the second apparatus via the: network; and 

22 a service, providing step where the first apparatus 

23 receives a, customized^ service /from the second apparatus and 

24 provides the received service to . the ; current, user, wherein 

25 the customized service is generated at the second apparatus, 

26 by customizing the desired service according to the transmitted 

27 unique information;, • - v « 

1 12. The service .providing^ method of Claim 11, 

2 wherein in ~the unique inf ormation .transmitting step, 

3 if no unique information is ^ stored in the locally connected 

4 recording medium or no recording medium is locally^ connected, 

5 to the first apparatus, the first apparatus does not read unique 

6 information from anywhere:, and' ; ;;> 

7 in the service providing step, if having, transmitted 

8 no unique information in the unique information transmitting 

9 step, the first .apparatus receives .the desired:- service from. 

10 the second apparatus in an uncustomized -state and provides 

11 the received . service^ to; the .current ; user> 

1 13. The service providing method of Claim 12, 

2 wherein the : unique ^information stored in each recording 

3 medium includes user information that is inherent t in a ; user- 

4 assigned the recording medium, and _ . 
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5 the customized service that is received and provided 

6 in the service providing step is generated at the second apparatus 

7 by customizing the desired seryiqe for the current user according 

8 to the user information included in; the transmitted unique 

9 information..: : :-.::-.-■•..* _ : ~ 

1 14 . The service providing method of Claim 13 further comprising: 

2 a user information updating step, performed after the 

3 unique information : transmitting ; step, where if* the user 

4 information inherent .in, the- current user needs to be updated, 

5 the first apparatus receives updated user< ; information from 

6 the second apparatus and .overwrite?: thejucser information in 

7 the locally connected recording medium with the updated user 

8 information.;— - > : ;; ~ ; . . - . * ... ,- 

1 15. The service providing method of Claim 14, : - . 

2 wherein the user information in each recording medium 

3 has been encrypted using a public key of a public key 

4 cryptosystem, 

5 the second apparatus stores; a-secretvkey,corresponding 

6 to the public, key,: .7 -. * c ;r >> 3.-;:. 

7 f the customized service -.that .is received and provided:, 

8 in the service providing step is generated at the second apparatus 

9 by decrypting the encrypted user information included in the 

10 transmitted unique - information. f using r the secret . key and 

11 customizing the desired service according to the decrypted 
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12 user information, and v 

13 the updated user inf ormation received f roiri the r second 

14 apparatus in the user information updating "step is generated 

15 at the second 1 apparatus by : updating the decrypted user 

16 information and encrypting the updated user inf ormation using 

17 the public key. 

1 16. The service -providing method : of . Claim 15> 

2 wherein the network' is the Internet > 

3 the first apparatus is an Internet terminal that runs^ 

4 a specialized Internet browser, : 

5 each of thS plurality of other apparatuses is' a Web 

6 site-, - - • ' ■■"* v J r y '"*•••'- v " • ' " ■ ' ■'■ - • 

7 the unique information stored in each recording medium 1 

8 includes cookie information used through the Internet browser, 

g and • 5 - ^r:i::- - , :.r : ■•. r '• > 

10 each recording medium - stores the cookie -'irrf ormation 

11 as a file. ' r : •' - r ---- : ; ' : ' r " > " 1 -'" ■ • 

1 17 The " service providing method of Claim 12, 

2 wherein the unique information stored in each recording 

3 medium includes a- media 'identifier of the recording medium, 

4 /the second. -apparatus^ stores user information so that 

5 user information inherent- in each user is associated with the... 

6 media identifier of the recording medium assigned to the* user* 

7 and • ■ - ■ : : * • 
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8 the customized service that is, received and provided 

9 in the service providing step is generated at the second apparatus 

10 by finding user information associated with the media identifier 

11 included in the transmitted unique information and customizing 

12 the desired service for the current user according to the found 

13 user information. .,, 



1 18. The service providing method of Claim 11 further comprising : 

2 ...... ... a, recording medium connection step, performed before 

3 the service, requesting step, where, the f irst;apparatus is locally 

4 connected to the recording jne.dium assigned to the current user. 

1 19. The service providing method of _ Claim 18,.. 

2 wherein the unique -inf oration stored in.each recording 

3 medium includes a mec^ia identifier, of the recording medium 

4 and user information that is .inherent in ja , user assigned the 

5 recording medium, the user inf ormatipn haying..been encrypted, 

6 and 

7 the service providing step includes: 

8 a user, password receiving's user password 

9 is received from- the current user, ■ 

10 wherein, the customized -service that : _ is received and 

11 provided in. the service providing, step : is .generated at the 

12 second-apparatus by generating a decryption : key .from the media 

13 identifier included in, the transmitted unique information and 

14 the received user password, . decrypting the encrypted user 

43 



WO 01/52168 



PCT/US01/00881 



15 information included" i*T the transmitted unique information 

16 using the generated decryption key, and customizing the desired 

17 service for the current user according to the decrypted user 

18 informations 

1 20. The service providing method of Claim 19/ 

2 wherein each recording medium includes a secure data 

3 areay ' ■ * 1 : : - * ■ : *-- ; : : - • :c;r v% ■■■ "- ? ~ 

4 the media- identif ier of £ach recording medium is stored 

5 in the secure data ar'ea of "the recording medium, and — 

6 the unique inforrnatiori transmitting step includes: 

7 a device authentication substep where a device 

8 authentication is perfoirmed between the first apparatus arid 

9 the locally connVbted recording medium; 'and' 

10 a transmitting prohibition substep where , if the device 

11 authentication has - eifded iri" failure, the f irst apparatus is 

12 prohibited: to trarisitiit data, 'in this secure' data area' of the 

13 locally connected recording medium. 

1 21 . A service providing dip^ of services 

2 that are provided by a plurality 6'f other apparatuses via a 

3 network and provides the received service to a current user 

4 of the service 1 providing apparatus, the service providing 

5 apparatus being able to communicate with each of the plurality 

6 of other apparatuses^ 1 via the network and being locally 

7 connectable to a recording medium, out -of recording media that 

44 



WO 01/52168 



PCTYUS01/00881 



8 are uniquely assigned to users of the service providing apparatus, 

9 each recording medium being transportable and including an 

10 area for storing unique information 

11 the service providing apparatus comprising : 

12 a service requesting unit operable to request a specific 

13 apparatus, out of the plurality of other apparatuses, to provide 

14 a service, desired by the current usesr; ^ - 

15 : " ' a unique; information transmitting unit operable to 

16 read, if a recording medium 1 of the Current user is locally 

17 connected to the service providing apparatus '&nd stores unique 

18 information, the unique information in the locally connected 

19 recording medium and transmit the read unique - .- inf ormation • to 

20 .the specific apparatus via the network;- and . - 

21 a service providing unit operable to receive a customized 

22 service from the specific apparatus and provide the received 

23 service to the current user,- wherein, the ^customized service 

24 is generated at the specific apparatus by customizing the desired 

25 service according to the transmitted unique^ dhf ormation. 

1 22. The service providing : apparatus of 'Claim 21, 

2 wherein if no unique inf ormation is stored ih-the locally 

3 connected recording mediiim or no recording ^inedixraf'is locally 

4 connected to the service providing apparatus, the unique 

5 information transmitting unit j d6es -not read unique information 

6 from anywhere, and ~ 1 " : 

7 if the unique information- -transmittihg unit has 
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8 transmitted no unique irrforrna t ion , the service providing unit 

9 receives the; desired service .from the specif ic, apparatus in 

10 an uncustomized state and provides the received service. to, 

11 the current user. , <_.. .r < 

1 23. The service providing apparatus of Claim 22, 

2 wherein the unique inf ormation stored in each recording 

3 medium includes user, [infp.^a-fcion-i^that-.-is-.. inherent in a user 

4 assigned the recording; medium, and , 

5 , the customized service that is received and provided 

6 by the service providing unit; is .generated at the specific 

7 apparatus by custpmizing. the desired service for the current. 

8 user according to ^ the ; :user information ; included in the 

9 transmitted unique ^information. .;. - i . 

1 24. The service providing r apparatus of- Claim. 23 further 

2 comprising: ■ _ r: - v: :: * w V; . : : ' . ... ..-o-r :«- ; : ;■ .. < . .«. 

3 a user information updating unit operable .to , receive, 

4 if the user information inherent in the current user needs 

5 to be updated, updated- user inf ormation , from the : specific 

6 apparatus and ove^write; r the .user information; in, the locally 

7 connected recording- .medium with the updated user information. 

1 25. The service providing apparatus of Claim 24, 

2 wherein the user information in each,, recording medium 

3 • has been encrypted using a- . public key of a .public key 
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4 cryptosystem, 

5 the specific apparatus stores a secret key corresponding 
.6 to the public key, 

7 the customized service that is received and provided 

8 by the service providing unit is, , generated at the specific 

9 apparatus by decrypting the.encrypted user, information included 

10 in the transmitted unique information using, the secret key 

11 and customizing the desired service according to the decrypted 

12 user. informatipn, and- • _ 

13 , t . the updatedus.er information received from the specific 

14 apparatus by the user information updating unit is generated 

15 at the specific apparatus by updating the decrypted - user 
.16 information and encrypting the updated user information using- 

17 the public key. 

1 26. The service providing apparatus, of Claim -25 , 

2 wherein the network is the Internet , . . z 

3 the service providing^ apparatus is an Internet terminal 

4 that runs a -specialized Internet browser,; > 

■ 5 each of the plurality of other apparatuses is a Web 

6 site, 

7 the unique information stored in each recording medium 

8 includes cookie information used through the/Internet browser, 

9 and . Jx ■ . :{ (i;r; , . ; , 

10 each recording medium stores .the cookie information 

11 as a file.. . ; . <■ t .... ri - 
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1 27. The service providing apparatus of Claim 22, 

2 wherein the unique information stored in each recording 

3 medium includes a media identifier of the recording medium, 

4 the specif ic apparatus stores user information so that 

5 user information inherent - in each user is associated with the 

6 media identifier ..of the recording medium assigned to the user, 

7 and • • "■' - •■- ■ "•= : ■■ 1 ,; ' ' ■ ! -* 

8 the customized service that is received and provided* 

9 by the service -providing linit *- is generated at the specific 

10 apparatus by finding user information associated with the media 

11 identifier included iri the "transmitted unique information and 

12 customizing the desired service for the current user according 

13 to the found user information. 

1 28. The service 1 providing' apparatus of Claim 21* further 

2 comprising: ,:;.*'*■■..-.-."-:■■ * : v • ^ - 

3 a recording medium connection 1 unit ope faible to locally 

4 connect the service providing apparatus to the-recdrding medium 

5 assigned to : the -current user.^ . : t ; 

1 29. The service providing -apparatus of Claim 28, 

2 wherein the unique information stored in each recording 

3 medium includes a media identifier of the recording medium 

4 and user information . that : is inherent in a user assigned the. 

5 recording medium, the user information having been encrypted, 
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6 and 

7 the service providing unit includes : 

8 a user password' receiving unit operable to receive 

9 abuser password from the current user, 

10 wherein the customized* service that is received and 

11 provided by the service providing unit i~s : generated at the 

12 specific- apparatus by generating a decryption key from the 

13 media identifier included in the transmitted unique inf ormatioh 

14 and the; received user password, decrypting the encrypted user 

15 information included in the' transmitted unique information 

16 using the generated decryption key, end customizing the desired 

17 service for the current user according to the decrypted user 

18 information, 

1 30. The service providing "apparatus "of Claim 29, 

2 ; wherein each recording medium includes a secure data 

3 area, • * " * ~- i;: : x-.. vcV' ■ . . - * •:. 

4 the media identifier of each recording medium is stored 

5 : in the secure data area of the recording : medium, and 

6 the unique : inf ormation transmitting unit includes: 

7 a device authentication unit operable to perform a 

8 device authentication between the service^ prbviding apparatus 

9 and the locally connected recording medium; and 1 

10 a transmitting : prohibition unit operable to prohibit, 

11 if the device authentication has ended in failure, transmission 

12 of data in the secure data area of the iocally connected recording 
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13 medium, 

1 31 • A recording medium which records a service providing program 

2 that has a first apparatus execute a procedure for receiving.. 

3 each of services that . are. provided; by . a plurality of other 

4 apparatuses via % network . and. providing the received service 

5 to a current user of the.first-appar^tus,, the first apparatus > 

6 being able to communic ate, .with each of the plurality .of oth^r- 

7 apparatuses via the network, and being locally connectable to. 

8 a recording medium, out of .recording media that are uniquely 

9 assigned to users .of the f irst apparatus , . each recording,medium 

10 being transportable and including an area for storing unique 

11 information, 

12 the service providing program comprising: 

13 a service; ^requesting ste^p where the .first apparatus 
14- requests a second : ,apparatus ,,to provide a service desired by 

15 the current user, the second apparatus being one of the plurality 

16 of. other apparatuses;* ■ _ ... ; •« 

17 a unique- inforaiat ion transmitting step, where if a 

18 recording medium of. the current user, is locally connected to 

19 the first apparatus and stores, unique information, the first 

. 20 apparatus reads the 7 unique inf prmation in the locally connected ; 

21 recording medium and transmits the read unique information 

22 to the second apparatus via the network; and, ^ 

23 a service providing step where: the - first apparatus 

24 receives a customized ..service f rom the second; apparatus and 
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25 provides the received service to the current user, wherein 

26 the customized service is generated at the second apparatus 

27 by customizing the desired service according to thetransmitted 

28 unique information. . . .* : . ,.; : 

1 32. A recording medium that is transportable and locally 

2 connectable to each Internet terminal, which; runs. a specialized 

3 Internet* browser, ^ and sfcores. t coo;kie, information used through 

4 the Internet browser >•-: . . r - -: .c« r ? .v,.:.i 

5 .! - wherein if ^an. Internet^ terminal. L is locally connected.. 

6 to the recording medium, a Web site that .is, 'connected .to the; 

7 Internet terminal via the Internet stores and reads cookie 

8 information into and from the recording medium through the 

9 Internet browser. 

1 33. The recording medium of Claim 32, 

2 wherein the stored cookie information has been encrypted 

3 using a public key corresponding to a secret key that has been 

4 obtained under a public key cryptosystem and is stored in the 

5 . Web site. 

1 34. The recording medium of Claim 32 comprising: 

2 a secure data area that stores a media identifier of 

3 the recording medium; 

- 4 a device authentication unit operable to perform device 

5 authentication with the locally connected Internet terminal; 
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6 and ; 

7 a reading prohibition unit operable to prohibit the 

8 locally connected Internet terminal from reading data in the 

9 secure data area, if the device authentication has ended in 
10 failure. 

1 35. The recording medium of Claim 34; 

2 ' wherein' the- encrypted and stored cookie information >■ 

3 is to be decrypted using a decryption key generated from; the 

4 media identif ierarid a user passworddesignatedby a user assigned . 

5 the recording medium. ^ - -».. * 
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